Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20637
HistoryJun 16, 2011 - 12:00 a.m.

Microsoft Forefront Threat Management Gateway (TMG)防火墙客户端内存破坏漏洞

2011-06-1600:00:00
Root
www.seebug.org
45

EPSS

0.804

Percentile

98.4%

JSON

Bugtraq ID: 48181
CVE ID:CVE-2011-1889

Microsoft Forefront Threat Management Gateway可以安装在DirectAccess服务器上,提供额外保护和其他Forefront TMG功能。
NSPLookupServiceNext()函数存在一个边界错误,提交通过TMG防火墙客户端的特殊请求可破坏内存,成功利用漏洞可执行任意代码。

Microsoft Forefront Threat Management Gateway 2010 Client
厂商解决方案
用户可参考如下供应商提供的安全公告获得补丁信息:
http://www.microsoft.com/technet/security/Bulletin/MS11-040.mspx

Related

checkpoint_advisories 2
securityvulns 1
mskb 1
cisa_kev 1
openvas 2
prion 1
attackerkb 1
nessus 1
cvelist 1
nvd 1
cve 1
checkpoint_advisories
checkpoint_advisories
Microsoft Threat Mgmt Gateway Firewall Client DNS Lookup Buffer Overflow - Ver2 (CVE-2011-1889)
2018-07-02 00:00:00
Microsoft Forefront TMG Memory Corruption Remote Code Execution (MS11-040; CVE-2011-1889)
2011-07-19 00:00:00
securityvulns
securityvulns
Microsoft Forefront Threat Management Gateway Firewall Client memory corruption
2011-06-15 00:00:00
mskb
mskb
MS11-040: Vulnerability in Threat Management Gateway Firewall Client could cause remote code execution: June 14, 2011
2011-06-14 00:00:00
cisa_kev
cisa_kev
Microsoft Forefront TMG Remote Code Execution Vulnerability
2022-03-03 00:00:00
openvas
openvas
MS Windows Threat Management Gateway Firewall Client Remote Code Execution Vulnerability (2520426)
2011-06-15 00:00:00
Microsoft Windows Threat Management Gateway Firewall Client Remote Code Execution Vulnerability (2520426)
2011-06-15 00:00:00
prion
prion
Memory corruption
2011-06-16 20:55:00
attackerkb
attackerkb
CVE-2011-1889
2011-06-16 00:00:00
nessus
nessus
MS11-040: Vulnerability in Threat Management Gateway Firewall Client Could Allow Remote Code Execution (2520426)
2011-06-15 00:00:00
cvelist
cvelist
CVE-2011-1889
2011-06-16 20:21:00
nvd
nvd
CVE-2011-1889
2011-06-16 20:55:02
cve
cve
CVE-2011-1889
2011-06-16 20:55:02

EPSS

0.804

Percentile

98.4%

JSON
Related for SSV:20637
checkpoint_advisories2securityvulns1mskb1cisa_kev1openvas2prion1attackerkb1nessus1cvelist1nvd1cve1